Sec-GPC
Experimental: This is an experimental technology
Check the Browser compatibility table carefully before using this in production.
The Sec-GPC
(Global Privacy Control) request header indicates whether the user consents to a website or service selling or sharing their personal information with third parties.
Header type | Request header |
---|---|
Forbidden header name | yes |
Syntax
Sec-GPC: 1
Directives
If Sec-GPC
is enabled the header is sent with a value of 1
indicating the user prefers their information not be shared with or sold to third parties. Otherwise, the header is not sent to indicate the user has not made a decision or the user is okay with their information being shared with or sold to third parties.
Examples
Reading Global Privacy Control status from JavaScript
The user's GPC preference can also be read from JavaScript using the Navigator.globalPrivacyControl
property:
js
navigator.globalPrivacyControl; // "0" or "1"
Specifications
Specification |
---|
Global Privacy Control (GPC) # the-sec-gpc-header-field-for-http-requests |
Browser compatibility
BCD tables only load in the browser